CVE-2026-43270
Severity CVSS v4.0:
Pending analysis
Type:
Unavailable / Other
Publication date:
06/05/2026
Last modified:
08/05/2026
Description
In the Linux kernel, the following vulnerability has been resolved:<br />
<br />
media: mtk-mdp: Fix a reference leak bug in mtk_mdp_remove()<br />
<br />
In mtk_mdp_probe(), vpu_get_plat_device() increases the reference<br />
count of the returned platform device. Add platform_device_put()<br />
to prevent reference leak.
Impact
Base Score 3.x
5.50
Severity 3.x
MEDIUM
Vulnerable products and versions
| CPE | From | Up to |
|---|---|---|
| cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:* | 4.10 (including) | 5.10.252 (excluding) |
| cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:* | 5.11 (including) | 5.15.202 (excluding) |
| cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:* | 5.16 (including) | 6.1.165 (excluding) |
| cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:* | 6.2 (including) | 6.6.128 (excluding) |
| cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:* | 6.7 (including) | 6.12.75 (excluding) |
| cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:* | 6.13 (including) | 6.18.16 (excluding) |
| cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:* | 6.19 (including) | 6.19.6 (excluding) |
To consult the complete list of CPE names with products and versions, see this page
References to Advisories, Solutions, and Tools
- https://git.kernel.org/stable/c/2d93758f42a57f3485534eab858b308e41653de4
- https://git.kernel.org/stable/c/403b7c757ac9f6b2ffb7d00ff4795a245f5e8911
- https://git.kernel.org/stable/c/4f2a51433a3a65d16975d1e32052d80656da077d
- https://git.kernel.org/stable/c/564fd3a63efc3ebbdb5d0a8fc7c0d3f753fbbd5d
- https://git.kernel.org/stable/c/a62ba5aa9ee95fd953583e95e519badf0b76ecf3
- https://git.kernel.org/stable/c/c44beed2e5caf2cbbe651432baa3a129f18b0169
- https://git.kernel.org/stable/c/dd530e29bd514d7187b3e2df8eb2107419c7988f
- https://git.kernel.org/stable/c/f128bab57b8018e526b7eda854ca20069863af47